In this session we spoke with Matthew Webster, a former CISO, recently turned consultant and advisor. Matthew is a thought leader in the realm of cybersecurity risk management and risk quantification. We discussed the best ways to quantify human risk, some approaches to the Cybersecurity Human Risk Management business case, and how to relate cybersecurity human risk management to the other roles in the organization, adjacent to the security team.
Cybersecurity isn’t just about technology—it’s about people. In this session, we spoke with Thea Mannix, co-founder and research director at Praxis Labs, to uncover how top organizations are tackling the human element of cybersecurity. Thea shared insights on how companies are identifying and managing human risk, building lasting secure behaviors, and cultivating a cybersecurity culture that truly resonates with employees. If you’ve ever wondered how psychology shapes cybersecurity or how people influence security outcomes, this conversation offered a fresh perspective you won’t want to miss.
Watch the discussion with Bec McKeown, a leading authority on the psychology of cybersecurity and incident response. In this episode, we unpack how human factors shape design and play a critical role in establishing robust cybersecurity controls. As the founder and Principal Psychologist of Mind Science, Ltd., and a visiting lecturer at Cranfield University, Bec brings a wealth of expertise on using behavioral science to foster engagement and embed a security-first mindset across organizations.
As a CISO, you’re no longer just protecting data—you’re shaping the future of your organization. In a world where cybersecurity is a boardroom priority, your ability to align with top executives can make or break your success.
Watch the discussion with Ursula Morgenstern, President of Cognizant, and John Madelin, a leading CISO, to learn how to drive a human-centric security strategy that resonates with the C-suite.
The podcast was hosted by our very own, Lev Lesohkin, EVP Technology and Analytics.
Discussion Topics:
Watch the recording to elevate your impact and lead with influence!
As a CISO, you’re no longer just protecting data—you’re shaping the future of your organization. In a world where cybersecurity is a boardroom priority, your ability to align with top executives can make or break your success.
Watch the discussion with Ursula Morgenstern, President of Cognizant, and John Madelin, a leading CISO, to learn how to drive a human-centric security strategy that resonates with the C-suite.
The podcast was hosted by our very own, Lev Lesohkin, EVP Technology and Analytics.
Discussion Topics:
Watch the recording to elevate your impact and lead with influence!
Conversation with Urmas Aamisepp, Leading Manufacturing CISO at Epiroc
In today’s digital landscape, cybersecurity threats are more prevalent than ever, and businesses must remain vigilant to protect sensitive information and assets.
While traditional office environments have access to robust cybersecurity measures and training, what about factory, retail and frontline workers who may share terminals, lack email addresses, or operate in non-traditional setups?
The manufacturing industry is grappling with a severe cybersecurity challenge, with many businesses falling victim to cybercrime. Recent reports show that nearly half of manufacturers have faced cyber-attacks in the past year, causing significant financial losses for over a quarter of these companies. Attacks vary from simple human errors to sophisticated breaches, leading to production stoppages and reputational damage. In fact, 65% of attacks result in production disruptions. Additionally, potential customers now require proof of robust cybersecurity measures before signing contracts.
Are you concerned about the cybersecurity risks faced by your factory workers?
Listen to the discussion with Urmas Aamisepp, CISO at Epiroc, who brings extensive experience in implementing Human Risk Management (HRM) within his organization. Epiroc, a leading global manufacturer of mining equipment based in Sweden, is committed to securing its workforce.
In this session, the following topics were covered:
When you hear the term cyber resilience, we mean the ability to bounce back from an adverse event and get back to running your business as seamlessly and as effortlessly as possible.
More than a year in and the COVID-19 pandemic has taken a toll on many people’s physical and mental health. A distracted work-from-home experience paired with lower overall morale makes staffs more susceptible to threats, and cyber criminals will take full advantage. Today, phishing has remained a prevalent threat, and continues to rise in sophistication and frequency.
The panelists involved in the cyber resilience webinar were:
Daniela Somerscales, Chief Information Security Officer, ClearBank. With over twenty years of experience in the banking sector, Daniela started her career in information technology and risk, before moving on to senior roles within information security – holding an MBA and MSc in the subject. Her current role as CISO at ClearBank brings together her various years of experience, as she plays a key role in delivering and maintaining its payment platform and supporting the broader business strategy.
Darren Argyle, Group Chief Information Security Risk Officer, Standard Chartered Bank. Darren is an accomplished executive with close to 20 years international cyber risk and security experience, based in Singapore with a global scope. Darren also serves as volunteer on the executive advisory board for cyber at Australia’s Deakin University.
He is the former Group Chief Information Security Officer (CISO) at Qantas Airlines in Australia, and, before coming to live in Australia, the former Chief Information Security Officer (CISO) at IHS Markit, a global FinTech headquartered in the UK. He has also held various senior international cyber security leadership roles at Symantec and IBM.
In 2016, Darren featured on the front cover of SC Magazine (an award-winning cybersecurity media publication) then, in 2017, was named in the top 100 Chief Information Security Officers globally. In 2018 he co-founded Cyber Leadership Institute, which delivers executive cyber leadership programs to support the next generation of cyber leaders and he remains the chairman.
The webinar was hosted by Dr Shorful Islam, Chief Product & Data Officer, OutThink.
Are you concerned about the cybersecurity risks faced by your factory workers?
Listen to the discussion with Urmas Aamisepp, CISO at Epiroc, who brings extensive experience in implementing Human Risk Management (HRM) within his organization. Epiroc, a leading global manufacturer of mining equipment based in Sweden, is committed to securing its workforce.
In this session, the following topics were covered:
With the increased use of digital technologies, remote working, the gig economy, systems with greater connectivity, and the collection of ever more valuable data assets the likely hood of compromise through cyber-attacks is higher than ever.
In the face of this increasing risk profile, many organisations still mistakenly believe that mitigation comes through heavy investment in security technology defences. In fact, this does little to change security culture, worse still it can create an unhealthy level of complacency.
Leading CISOs understand that the security behaviours of individual employees are heavily influenced by the prevailing security culture of the organisation as a whole. How can leaders pro-actively shape their organisation’s security culture and values in order to sustainably change behaviours on a day-to-day basis?
To address these problems, OutThink is actively engaged in building a ‘Framework for the Management of Human Risk in Cyber Security’ which helps organisations understand that creating a strong healthy cyber-security culture is not simply about patching technology and processes. In fact, it is about patching the human brain.
On this topic, we hosted our latest webinar on May 27th, 2021 where our guest speakers Illyas Kooliyankal, CISO, Abu Dhabi Islamic Bank, and Vuk Sajinovic, Senior ISO, European Investment Bank shared their views on how to create, develop and maintain a risk-aware cybersecurity culture.
Our panellists will be:
Illyas Kooliyankal – CISO, Abu Dhabi Islamic Bank
Illyas is Cyber Security leader with multi decade experience of pioneering and leading multi-million dollar projects and transformation programs across financial institutions. He has laid the foundation of digital secure landscape and prioritising continuous business growth. His core ideology is to transform and institutionalise a cyber-secure culture and defend the bank against dynamic threat vectors.
Illyas Kooliyankal is also a well-known speaker and writer. He has delivered key note speeches at many international conferences and has penned down his unconventional and challenging prospective on cyber security through various blogs and magazines.
Vuk Sajinovic –Senior ISO, European Investment Bank
Vuk Sajinovic is Senior Information Security Officer at European Investment Bank (EIB) where he is responsible for the risk assessment of business applications across the bank, including cloud applications.
Vuk been actively involved in the information and cyber security industry for 10 years. He started his career in IT internal audit working with EY and RBC and has a wealth of experience advising organisations to understand and improve their cyber resilience.
Vuk holds CISA and BCMS certifications and is an active contributor to the InfoSec community through conferences and speaking engagements.””
Awareness alone isn’t enough to drive behavior change in organizations. While educating people about policies and risks is important, continuous training and reinforcement are needed to make secure behaviors routine.
This transformation requires leadership from the top and consistent investment, with the CISO enabling a shift toward an engage security-focused culture.
As the cyber landscape evolves, hackers increasingly exploit human vulnerabilities. Disengaged users are particularly at risk, highlighting the need for ongoing education to ensure that security awareness leads to consistent, secure behaviors.
To address these problems, OutThink is actively engaged in building a ‘Cybersecurity Human Risk Management Framework’ which helps organizations understand that creating a strong healthy cyber-security culture is not simply about patching technology and processes. In fact, it is about engaging the human element.
On this topic, we hosted our latest webinar on 9th of July, 2024 where our guest speaker Prof. Angela Sasse shared her views on engaging and managing human risk.
Prof. M Angela Sasse is currently the Director of the multidisciplinary UK Research Institute for Science of Cyber Security (RISCS), funded by EPSRC and GCHQ. The nature and importance of her work was showcased in a recent article in Nature.
Fellow of the Royal Academy of Engineering and the British Computer Society. Adviser to the UK National Cyber Security Center (NCSC) and the EU Agency for Cybersecurity (ENISA) and OutThink Scientific Advisor.
M. Angela Sasse FREng is the Professor of Human-Centered Security at Ruhr University Bochum in Germany, also retains an appointment at UCL in the UK.
If you believe in building sustainable security, it’s time to OutThink.
© 2023 OutThink Ltd. Company no. 096433149.
Lorem ipsum dolor sit amet, consectetur adipiscing elit. Ut elit tellus, luctus nec ullamcorper mattis, pulvinar dapibus leo.